CVE-2025-55582 — MEDIUM (6.6)

Vulnerability Description

D-Link DCS-825L firmware v1.08.01 contains a vulnerability in the watchdog script `mydlink-watch-dog.sh`, which blindly respawns binaries such as `dcp` and `signalc` without verifying integrity, authenticity, or permissions. An attacker with local filesystem access (via physical access, firmware modification, or debug interfaces) can replace these binaries with malicious payloads. The script executes these binaries as root in an infinite loop, leading to persistent privilege escalation and arbitrary code execution. This issue is mitigated in v1.09.02, but the product is officially End-of-Life and unsupported.

CVSS Score

6.6

MEDIUM

CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

PHYSICAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Dlink	Dcs-825L Firmware	1.08.01
Dlink	Dcs-825L	-

Related Weaknesses (CWE)

CWE-269 CWE-494

References

https://cybermaya.in/posts/Post-43/ExploitThird Party Advisory
https://supportannouncement.us.dlink.com/security/publication.aspx?name=SAP10431Product
https://www.dlink.com/en/security-bulletin/Not Applicable

FAQ

What is CVE-2025-55582?

CVE-2025-55582 is a vulnerability with a CVSS score of 6.6 (MEDIUM). D-Link DCS-825L firmware v1.08.01 contains a vulnerability in the watchdog script `mydlink-watch-dog.sh`, which blindly respawns binaries such as `dcp` and `signalc` without verifying integrity, authe...

How severe is CVE-2025-55582?

CVE-2025-55582 has been rated MEDIUM with a CVSS base score of 6.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-55582?

Check the references section above for vendor advisories and patch information. Affected products include: Dlink Dcs-825L Firmware, Dlink Dcs-825L.